CSCv7|7.3

Title

Limit Use of Scripting Languages in Web Browsers and Email Clients

Description

Ensure that only authorized scripting languages are able to run in all web browsers and email clients.

Reference Item Details

Category: Email and Web Browser Protections

Audit Items

View all Reference Audit Items

NamePluginAudit Name
1.1.53 Ensure 'Enable renderer code integrity' is set to 'Enabled'WindowsCIS Microsoft Edge L1 v1.0.0
1.1.53 Ensure 'Enable renderer code integrity' is set to 'Enabled'WindowsCIS Microsoft Edge L1 v1.0.1
1.7 Ensure 'Enable deprecated web platform features for a limited time' is set to 'Disabled'WindowsCIS Google Chrome L1 v2.0.0
1.8 Ensure 'Enable third party software injection blocking' is set to 'Enabled'WindowsCIS Google Chrome L1 v2.0.0
1.20 Ensure 'Enable third party software injection blocking' is set to 'Enabled'WindowsCIS Google Chrome L1 v2.1.0
1.84 Ensure 'Enable renderer code integrity' is set to 'Enabled'WindowsCIS Microsoft Edge L1 v1.1.0
1.89 Ensure 'Enable renderer code integrity' is set to 'Enabled'WindowsCIS Microsoft Edge L1 v2.0.0
18.9.48.4 Ensure 'Allow Sideloading of extension' is set to 'Disabled'WindowsCIS Microsoft Windows 10 Enterprise (Release 20H2) v1.10.1 L1 + BL
18.9.48.4 Ensure 'Allow Sideloading of extension' is set to 'Disabled'WindowsCIS Microsoft Windows 10 Enterprise (Release 20H2) v1.10.1 L1
18.9.48.4 Ensure 'Allow Sideloading of extension' is set to 'Disabled'WindowsCIS Microsoft Windows 10 Enterprise (Release 20H2) v1.10.1 L1 + BL + NG
18.9.48.4 Ensure 'Allow Sideloading of extension' is set to 'Disabled'WindowsCIS Microsoft Windows 10 Enterprise (Release 2004) v1.9.1 L1
18.9.48.4 Ensure 'Allow Sideloading of extension' is set to 'Disabled'WindowsCIS Microsoft Windows 10 Enterprise (Release 20H2) v1.10.1 L1 + NG
18.9.48.5 Ensure 'Configure cookies' is set to 'Enabled: Block only 3rd-party cookies' or higherWindowsCIS Microsoft Windows 10 Enterprise (Release 20H2) v1.10.1 L1
18.9.48.5 Ensure 'Configure cookies' is set to 'Enabled: Block only 3rd-party cookies' or higherWindowsCIS Microsoft Windows 10 Enterprise (Release 20H2) v1.10.1 L1 + BL + NG
18.9.48.5 Ensure 'Configure cookies' is set to 'Enabled: Block only 3rd-party cookies' or higherWindowsCIS Microsoft Windows 10 Enterprise (Release 2004) v1.9.1 L1
18.9.48.5 Ensure 'Configure cookies' is set to 'Enabled: Block only 3rd-party cookies' or higherWindowsCIS Microsoft Windows 10 Enterprise (Release 20H2) v1.10.1 L1 + NG
18.9.48.5 Ensure 'Configure cookies' is set to 'Enabled: Block only 3rd-party cookies' or higherWindowsCIS Microsoft Windows 10 Enterprise (Release 20H2) v1.10.1 L1 + BL
18.9.48.9 Ensure 'Configure the Adobe Flash Click-to-Run setting' is set to 'Enabled'WindowsCIS Microsoft Windows 10 Enterprise (Release 20H2) v1.10.1 L1 + BL
18.9.48.9 Ensure 'Configure the Adobe Flash Click-to-Run setting' is set to 'Enabled'WindowsCIS Microsoft Windows 10 Enterprise (Release 20H2) v1.10.1 L1 + NG
18.9.48.9 Ensure 'Configure the Adobe Flash Click-to-Run setting' is set to 'Enabled'WindowsCIS Microsoft Windows 10 Enterprise (Release 2004) v1.9.1 L1
18.9.48.9 Ensure 'Configure the Adobe Flash Click-to-Run setting' is set to 'Enabled'WindowsCIS Microsoft Windows 10 Enterprise (Release 20H2) v1.10.1 L1 + BL + NG
18.9.48.9 Ensure 'Configure the Adobe Flash Click-to-Run setting' is set to 'Enabled'WindowsCIS Microsoft Windows 10 Enterprise (Release 20H2) v1.10.1 L1
18.9.80.1.1 (L1) Ensure 'Configure Windows Defender SmartScreen' is set to 'Enabled: Warn and prevent bypass'WindowsCIS Microsoft Windows 8.1 v2.4.0 L1
18.9.80.1.1 (L1) Ensure 'Configure Windows Defender SmartScreen' is set to 'Enabled: Warn and prevent bypass'WindowsCIS Microsoft Windows 8.1 v2.4.1 L1 Bitlocker
18.9.80.1.1 (L1) Ensure 'Configure Windows Defender SmartScreen' is set to 'Enabled: Warn and prevent bypass'WindowsCIS Microsoft Windows 8.1 v2.4.0 L1 Bitlocker
18.9.80.1.1 Ensure 'Configure Windows Defender SmartScreen' is set to 'Enabled: Warn and prevent bypass'WindowsCIS Microsoft Windows Server 2008 Member Server Level 1 v3.2.0
18.9.80.1.1 Ensure 'Configure Windows Defender SmartScreen' is set to 'Enabled: Warn and prevent bypass'WindowsCIS Microsoft Windows Server 2008 Domain Controller Level 1 v3.2.0
18.9.80.1.1 Ensure 'Configure Windows Defender SmartScreen' is set to 'Enabled: Warn and prevent bypass'WindowsCIS Windows Server 2012 MS L1 v2.2.0
18.9.80.1.1 Ensure 'Configure Windows Defender SmartScreen' is set to 'Enabled: Warn and prevent bypass'WindowsCIS Windows Server 2012 DC L1 v2.2.0
18.9.80.1.1 Ensure 'Configure Windows Defender SmartScreen' is set to 'Enabled: Warn and prevent bypass'WindowsCIS Microsoft Windows 8.1 v2.4.1 L1
18.9.80.1.1 Ensure 'Configure Windows Defender SmartScreen' is set to 'Enabled: Warn and prevent bypass' - EnableSmartScreenWindowsCIS Microsoft Windows Server 2016 STIG MS L1 v1.0.0
18.9.80.1.1 Ensure 'Configure Windows Defender SmartScreen' is set to 'Enabled: Warn and prevent bypass' - EnableSmartScreenWindowsCIS Microsoft Windows Server 2016 STIG NG MS L3 v1.0.0
18.9.80.1.1 Ensure 'Configure Windows Defender SmartScreen' is set to 'Enabled: Warn and prevent bypass' - EnableSmartScreenWindowsCIS Windows Server 2012 R2 MS L1 v2.4.0
18.9.80.1.1 Ensure 'Configure Windows Defender SmartScreen' is set to 'Enabled: Warn and prevent bypass' - EnableSmartScreenWindowsCIS Windows Server 2012 R2 DC L1 v2.4.0
18.9.80.1.1 Ensure 'Configure Windows Defender SmartScreen' is set to 'Enabled: Warn and prevent bypass' - EnableSmartScreenWindowsCIS Microsoft Windows Server 2016 STIG NG DC L3 v1.0.0
18.9.80.1.1 Ensure 'Configure Windows Defender SmartScreen' is set to 'Enabled: Warn and prevent bypass' - EnableSmartScreenWindowsCIS Microsoft Windows Server 2016 DC L1 v1.2.0
18.9.80.1.1 Ensure 'Configure Windows Defender SmartScreen' is set to 'Enabled: Warn and prevent bypass' - EnableSmartScreenWindowsCIS Microsoft Windows Server 2016 STIG DC L1 v1.0.0
18.9.80.1.1 Ensure 'Configure Windows Defender SmartScreen' is set to 'Enabled: Warn and prevent bypass' - EnableSmartScreenWindowsCIS Microsoft Windows 10 Enterprise (Release 2004) v1.9.1 L1
18.9.80.1.1 Ensure 'Configure Windows Defender SmartScreen' is set to 'Enabled: Warn and prevent bypass' - EnableSmartScreenWindowsCIS Microsoft Windows Server 2016 MS L1 v1.2.0
18.9.80.1.1 Ensure 'Configure Windows Defender SmartScreen' is set to 'Enabled: Warn and prevent bypass' - ShellSmartScreenLevelWindowsCIS Microsoft Windows Server 2016 STIG NG DC L3 v1.0.0
18.9.80.1.1 Ensure 'Configure Windows Defender SmartScreen' is set to 'Enabled: Warn and prevent bypass' - ShellSmartScreenLevelWindowsCIS Microsoft Windows Server 2016 DC L1 v1.2.0
18.9.80.1.1 Ensure 'Configure Windows Defender SmartScreen' is set to 'Enabled: Warn and prevent bypass' - ShellSmartScreenLevelWindowsCIS Microsoft Windows Server 2016 STIG NG MS L3 v1.0.0
18.9.80.1.1 Ensure 'Configure Windows Defender SmartScreen' is set to 'Enabled: Warn and prevent bypass' - ShellSmartScreenLevelWindowsCIS Microsoft Windows Server 2016 STIG DC L1 v1.0.0
18.9.80.1.1 Ensure 'Configure Windows Defender SmartScreen' is set to 'Enabled: Warn and prevent bypass' - ShellSmartScreenLevelWindowsCIS Windows Server 2012 R2 DC L1 v2.4.0
18.9.80.1.1 Ensure 'Configure Windows Defender SmartScreen' is set to 'Enabled: Warn and prevent bypass' - ShellSmartScreenLevelWindowsCIS Microsoft Windows Server 2016 STIG MS L1 v1.0.0
18.9.80.1.1 Ensure 'Configure Windows Defender SmartScreen' is set to 'Enabled: Warn and prevent bypass' - ShellSmartScreenLevelWindowsCIS Microsoft Windows 10 Enterprise (Release 2004) v1.9.1 L1
18.9.80.1.1 Ensure 'Configure Windows Defender SmartScreen' is set to 'Enabled: Warn and prevent bypass' - ShellSmartScreenLevelWindowsCIS Microsoft Windows Server 2016 MS L1 v1.2.0
18.9.80.1.1 Ensure 'Configure Windows Defender SmartScreen' is set to 'Enabled: Warn and prevent bypass' - ShellSmartScreenLevelWindowsCIS Windows Server 2012 R2 MS L1 v2.4.0
18.9.81.1.1 Ensure 'Configure Windows Defender SmartScreen' is set to 'Enabled: Warn and prevent bypass' - EnableSmartScreenWindowsCIS Microsoft Windows Server 2016 MS L1 v1.3.0
18.9.81.1.1 Ensure 'Configure Windows Defender SmartScreen' is set to 'Enabled: Warn and prevent bypass' - EnableSmartScreenWindowsCIS Microsoft Windows Server 2016 DC L1 v1.3.0